This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.mft File: p2Sib3Y1UUCqaW4KTx8MMStyd8A.mft (raw, json) Hash identifier: 0gVHsEep2yTMQidjugSULSgGZlVzjLojn7AySsg5dxo= Subject key identifier: 84:89:28:19:1A:93:07:AB:DD:1B:A4:94:68:56:1B:11:50:46:BF:98 Authority key identifier: A7:64:A2:6F:76:35:51:40:AA:69:6E:0A:4F:1F:0C:31:2B:72:77:C0 Certificate issuer: /CN=a764a26f76355140aa696e0a4f1f0c312b7277c0 Certificate serial: 019B6241FFA54E2A61E7E87F4386D751DE78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2Sib3Y1UUCqaW4KTx8MMStyd8A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.mft Manifest number: 14D6 Signing time: Sun 28 Dec 2025 00:00:50 +0000 Manifest this update: Sun 28 Dec 2025 00:00:50 +0000 Manifest next update: Mon 29 Dec 2025 00:00:50 +0000 Files and hashes: 1: BzSGdKXS_5WRE8i4u-1soKeFtzM.roa (hash: vrT1E18BTpX1mS9gu66zvt/nerXMjovuRA/4FT5P190=) 2: p2Sib3Y1UUCqaW4KTx8MMStyd8A.crl (hash: PpneUZTWdtoiYn6Ep3foOhOt03+MFNwNE98tfJkfjsw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.mft rsync://rpki.ripe.net/repository/DEFAULT/p2Sib3Y1UUCqaW4KTx8MMStyd8A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:62:41:ff:a5:4e:2a:61:e7:e8:7f:43:86:d7:51:de:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a764a26f76355140aa696e0a4f1f0c312b7277c0 Validity Not Before: Dec 28 00:00:50 2025 GMT Not After : Dec 29 00:00:50 2025 GMT Subject: CN=848928191a9307abdd1ba49468561b115046bf98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:df:30:4b:8a:57:a0:dd:78:f3:4d:a7:2b:39: 2f:36:39:89:42:88:15:52:d6:a5:cd:c5:e8:79:83: f0:74:c3:c5:41:5c:5b:25:38:ec:21:ca:c1:bc:c0: 13:aa:7a:02:75:8f:e0:4f:ff:86:ad:19:96:19:71: 97:de:9a:24:04:46:cc:25:16:9e:b7:74:ef:43:b0: 96:c5:c2:6a:9f:cc:5f:4c:68:ef:7c:9d:d1:62:24: 2c:d4:2b:74:b0:eb:6e:a6:07:2c:89:36:58:e8:51: cc:1f:2a:9c:0b:cc:cc:e6:6c:6a:fd:87:7b:23:73: 48:bf:cf:58:24:3c:f1:dd:02:9e:a0:c4:08:75:67: 2f:89:fe:fb:a0:bc:15:5f:28:49:be:32:56:33:0f: 0f:03:e2:9c:5b:41:d1:3b:55:d9:dc:88:61:c1:a1: fc:21:dc:e2:94:6e:e0:bb:3f:ee:2d:6b:8c:73:0f: 08:4f:9a:09:0e:5f:2f:88:57:b6:de:4c:51:71:e8: bb:4b:75:92:57:ad:f9:3c:9b:20:41:4e:33:e6:77: 06:02:77:62:c1:dd:56:38:58:ad:00:ca:6e:bd:4f: 69:f9:a1:6f:b4:20:1e:ab:87:c7:df:bd:a5:33:2f: 22:d1:2e:1a:68:28:48:1e:f5:f0:07:08:aa:09:51: 4d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:89:28:19:1A:93:07:AB:DD:1B:A4:94:68:56:1B:11:50:46:BF:98 X509v3 Authority Key Identifier: keyid:A7:64:A2:6F:76:35:51:40:AA:69:6E:0A:4F:1F:0C:31:2B:72:77:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2Sib3Y1UUCqaW4KTx8MMStyd8A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:bd:8b:e2:a2:ce:89:18:c9:b7:30:72:2b:a4:90:72:e8:cf: 3e:37:90:ce:bf:11:3d:9c:bc:e6:75:c1:34:c6:91:1c:69:60: 9d:45:41:d7:03:64:29:60:91:db:e7:37:3c:92:af:53:83:3b: f1:32:fa:c8:52:ce:db:ba:60:b2:2c:2c:53:f5:57:1f:3d:85: 10:fd:b2:f2:6d:a2:b3:0c:b2:c9:ea:61:55:92:23:78:44:66: 36:cb:e2:5d:cb:30:f0:49:96:30:2e:bb:4e:79:2d:31:63:f7: 24:12:1d:36:9d:d9:68:77:97:19:ef:ef:1d:bf:8f:de:e8:2f: 37:de:94:bf:61:cb:d8:4b:fd:d3:89:e1:68:0c:5b:a5:ac:71: 55:1c:97:6e:21:66:99:31:51:9a:26:25:7c:48:55:4b:8b:97: 0b:6d:c3:e9:32:a1:b8:23:e0:b8:4a:81:4e:7e:25:fe:cd:64: cf:93:9c:aa:e9:24:39:8f:f1:1e:9b:dd:42:d3:1d:ad:3a:ea: b4:61:f9:51:38:13:0e:2c:11:18:2a:50:cc:10:3b:04:ca:1f: a1:5e:23:7b:5a:1f:d4:8b:f8:bc:dc:f5:f4:2e:1e:ba:7c:a1: 53:a0:c8:f6:bb:bb:22:2e:57:27:a7:bc:83:8f:af:f3:d8:90: ca:cc:ee:2b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtiQf+lTiph5+h/Q4bXUd54MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3NjRhMjZmNzYzNTUxNDBhYTY5NmUwYTRmMWYwYzMxMmI3 Mjc3YzAwHhcNMjUxMjI4MDAwMDUwWhcNMjUxMjI5MDAwMDUwWjAzMTEwLwYDVQQD Eyg4NDg5MjgxOTFhOTMwN2FiZGQxYmE0OTQ2ODU2MWIxMTUwNDZiZjk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz98wS4pXoN14802nKzkvNjmJQogV UtalzcXoeYPwdMPFQVxbJTjsIcrBvMATqnoCdY/gT/+GrRmWGXGX3pokBEbMJRae t3TvQ7CWxcJqn8xfTGjvfJ3RYiQs1Ct0sOtupgcsiTZY6FHMHyqcC8zM5mxq/Yd7 I3NIv89YJDzx3QKeoMQIdWcvif77oLwVXyhJvjJWMw8PA+KcW0HRO1XZ3IhhwaH8 IdzilG7guz/uLWuMcw8IT5oJDl8viFe23kxRcei7S3WSV635PJsgQU4z5ncGAndi wd1WOFitAMpuvU9p+aFvtCAeq4fH372lMy8i0S4aaChIHvXwBwiqCVFN0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFISJKBkakwer3RuklGhWGxFQRr+YMB8GA1UdIwQY MBaAFKdkom92NVFAqmluCk8fDDErcnfAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcDJTaWIzWTFVVUNxYVc0S1R4OE1NU3R5ZDhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8xZTgxODMtYWFkMS00ZmQ3LWIxMGYt ZmZhNDk1MGExY2NiLzEvcDJTaWIzWTFVVUNxYVc0S1R4OE1NU3R5ZDhBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi8xZTgxODMtYWFkMS00ZmQ3LWIxMGYtZmZhNDk1MGExY2Ni LzEvcDJTaWIzWTFVVUNxYVc0S1R4OE1NU3R5ZDhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAir2L4qLO iRjJtzByK6SQcujPPjeQzr8RPZy85nXBNMaRHGlgnUVB1wNkKWCR2+c3PJKvU4M7 8TL6yFLO27pgsiwsU/VXHz2FEP2y8m2iswyyyephVZIjeERmNsviXcsw8EmWMC67 TnktMWP3JBIdNp3ZaHeXGe/vHb+P3ugvN96Uv2HL2Ev904nhaAxbpaxxVRyXbiFm mTFRmiYlfEhVS4uXC23D6TKhuCPguEqBTn4l/s1kz5OcqukkOY/xHpvdQtMdrTrq tGH5UTgTDiwRGCpQzBA7BMofoV4je1of1Iv4vNz19C4eunyhU6DI9ru7Ii5XJ6e8 g4+v89iQyszuKw== -----END CERTIFICATE-----Generated at Sun Dec 28 04:58:38 2025 by rpki-client